This chapter reviews issues known to exist in previous Oracle HTTP Server releases that have now been resolved.
Resolved issues are described in the following table:
Table 5-1 Resolved Issues for Release 11.1.1.9
| Issue | Resolution |
|---|---|
|
Security concerns about the SSLv3 protocol. |
The SSLv3 security protocol has been disabled out-of-the-box for the 11.1.1.9 release. The TLS version 1.1 and 1.2 security protocols have been added to the 11.1.1.9 release. |
|
An invalid_socket condition in Windows MPM is not handled properly. |
Fixed an issue which caused an invalid_socket condition in windows MPM to be handled incorrectly. |
|
A memory leak causes the TMP pool to be destroyed when a call to connect() fails. |
Fixed a memory leak issue which destroyed the TMP pool when a call to connect() failed. |
|
In the case of a bad configuration, the process was destroyed after the server was signaled. |
Fixed the issue such that the destroy_and_exit_process() is called before signaling the server in the case of a bad configuration. |
|
Insufficient information in error messages. |
Filesystem paths have been added to some common error messages in OHS. |
|
When setting the default location in mod_wl_ohs as a cluster, it overrides the values of other locations. |
Fixed an issue where listeners (OHS, Apache, IIS, iPlanet) could not handle the numeric form of the WLS server IPv4 address if it was a negative number. This issue prevented requests from being proxied to the WLS server. |
|
When setting default location in mod_wl_ohs as a cluster, it overrides others. |
Fixed an issue where if WebLogicHost and WebLogicCluster were used for different Location/LocationMatch, the plug-in would route to an incorrect WLS server. Applicable for OHS and Apache plug-ins |
|
The customer has SSL set-up between Apache (Plugin 11.1.1.7) and WLS. The requests work most of the time, but intermittently, after Apache restart, all the requests from Plugin to WLS fail. |
Fixed an intermittent issue where SSL connections failed when the Apache server is restarted. The plugin was trying to send data over HTTP instead of HTTPS and hence WLS rejected the request. |
|
OHS was consistently crashing when trying to connect over SSL. |
Fixed an issue where the handshake was not being successfully completed between OHS and SSL. |
|
Although it is ignored by mod_ossl if present, the cipher SSL_RSA_WITH_DES_CBC_SHA is not supported and must be removed from the default ssl.conf file shipped with OHS. |
The weak cipher SSL_RSA_WITH_DES_CBC_SHA has been removed from the SSL.CONF file. |
|
In EM and OHS log files, the version for OHS is given as 11.1.1.6. |
The OHS version has been updated to 11.1.1.9.0 so that the EM and OHS log file shows the correct version. Also the server signature in OHS log has been changed to replace "Oracel-Application-Server" with "Oracle-HTTP-Server". |
|
Customers want to change the location of the DMS metrics file. |
Fixed an issue where the DMS SHM file was hardcoded to be in the OHS log directory. The DMS SHM file can now be configured to be on NFS. Note that if the OHS log directory is located on an NFS mounted file system, then the shared memory map file OHS uses to maintain metrics can cause performance issues. This is not an issue on Windows. |
|
An insufficient default memory size indicated in the OHS logs with the message beginning with: "dms_fail_shm_expansion: out of DMS shared memory in" may cause OHS to not start at all, or to start but stop supporting the metrics displayed by EM after logging the above message. |
A new algorithm has been developed to calculate the amount of shared memory required for DMS. |
|
Provisioning fails because file system is full. This was caused by too many core files created by httpd.worker. |
This bug fixes intermittent crashes for certain HTTP requests. Applicable for OHS and Apache plug-in Can't access base bug. RN not needed. |
|
iPlanet Webserver and other application servers can crash when configured with one-way SSL. |
The issue that caused iPlanet Webserver and other application servers to crash with one-way SSL has been resolved. |